Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/eWcWfNZ-EfWW-NGvXQCC85ntpH8.roa
File: eWcWfNZ-EfWW-NGvXQCC85ntpH8.roa (raw, json)
Hash identifier: JnQ17QGfxQtAemBJMFLXpPFmY/ueJsW7rAduSoORn4I=
Subject key identifier: 79:67:16:7C:D6:7E:11:F5:96:F8:D1:AF:5D:00:82:F3:99:ED:A4:7F
Certificate issuer: /CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Certificate serial: 019425FD94C69831710F01EEAD24A6AFEBCC
Authority key identifier: 1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/eWcWfNZ-EfWW-NGvXQCC85ntpH8.roa
Signing time: Thu 02 Jan 2025 07:49:23 +0000
ROA not before: Thu 02 Jan 2025 07:49:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34476
IP address blocks: 195.49.238.0/24 maxlen: 24
195.49.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:94:c6:98:31:71:0f:01:ee:ad:24:a6:af:eb:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Validity
Not Before: Jan 2 07:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7967167cd67e11f596f8d1af5d0082f399eda47f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:01:10:65:cf:96:7c:07:87:35:56:23:b8:
d8:af:39:f2:73:1e:51:96:e1:fa:7f:2d:88:46:ec:
ee:d2:88:14:08:29:61:10:49:87:d3:4c:12:48:9a:
59:98:df:de:63:db:cc:8c:56:92:e5:d2:a3:04:40:
87:31:29:4f:06:00:d1:55:98:54:e1:f3:1e:ee:58:
36:38:50:34:28:e1:80:7d:79:1f:d3:22:bb:ce:ba:
40:c1:a5:24:e9:86:54:b3:39:3f:20:de:e2:07:0c:
31:bb:0b:28:e9:17:60:a7:70:7a:18:83:d3:93:fd:
35:a9:16:3b:40:6d:2e:70:60:93:32:24:34:54:f5:
ad:b3:39:ba:95:da:eb:21:27:a0:01:59:71:18:22:
a8:a5:80:f9:de:37:ee:dc:46:38:7b:fa:f6:f5:47:
af:82:ae:e6:fa:9b:10:f2:b1:c0:07:3c:89:61:66:
9f:31:2d:82:e2:23:b8:3b:c0:78:40:37:94:ee:68:
f7:c7:05:aa:ab:8e:c6:a1:cc:1a:ce:24:a8:85:75:
ad:39:0d:66:8d:35:b5:2d:a5:3c:7a:ad:8d:f8:ac:
b7:d8:6b:98:75:bd:8f:65:f7:1e:3a:11:4e:84:ed:
9a:d0:14:ea:84:ca:0f:f8:60:e2:93:2f:b1:bc:5e:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:67:16:7C:D6:7E:11:F5:96:F8:D1:AF:5D:00:82:F3:99:ED:A4:7F
X509v3 Authority Key Identifier:
keyid:1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/eWcWfNZ-EfWW-NGvXQCC85ntpH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.238.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:e1:ff:71:a8:56:83:ab:cb:87:1a:66:db:53:69:42:15:5d:
0d:ca:89:51:83:a8:21:50:f3:32:7f:94:50:6f:d7:ad:a6:1b:
77:e1:e1:22:46:fd:35:fe:08:54:1e:af:4a:ae:fb:ca:e2:ca:
f8:d2:b8:76:18:f9:35:32:06:0b:48:0b:a4:46:02:6e:c6:c0:
bf:68:7f:07:87:f5:cc:53:eb:eb:2d:be:0a:08:a7:b4:92:73:
49:1f:01:fc:06:32:54:2d:9c:df:ab:c2:12:6b:b4:5a:68:12:
33:29:20:4c:10:55:65:b2:a8:6e:e5:60:de:3c:66:57:79:80:
b1:70:b9:a5:d4:73:29:1e:95:e0:2f:47:90:92:b9:58:a8:04:
41:bc:bc:0b:53:e8:c9:45:6d:17:8a:33:f6:36:57:bd:1c:fc:
4b:46:37:6e:a6:e0:99:3d:a4:ed:a6:c1:66:9c:91:8a:0b:7e:
f0:eb:d8:17:45:cf:34:9e:75:50:e0:26:4b:51:09:b7:57:60:
a8:52:a8:0d:58:38:68:bc:94:f1:b6:f5:58:5b:44:17:95:c7:
74:19:f4:bf:b6:43:85:37:3a:93:2c:9a:ef:0b:92:b4:f0:2d:
c2:62:81:81:e7:fc:28:4f:6c:c1:f2:73:4a:9d:23:41:db:b4:
0c:74:4b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:08 2025 by rpki-client on console.sobornost.net